Chief Information Security Officer

Who We Are

SHVA is a dynamic, growing technology company — the strongest, most stable, and most secure infrastructure for processing payment transactions in the Israeli market. We invite you to join us as a Chief Information Security Officer, responsible for overseeing the company’s information security and cyber defense operations end-to-end

In this role, you will be responsible for operating and maintaining the company’s entire information security system, implementing and enforcing policies across all systems, analyzing and characterizing incidents, and providing solutions

What You’ll Do

• Manage a team responsible for information security guidance and oversight.
• Take full ownership of the company’s information security strategy, protecting corporate assets, and managing cyber risk.
• Lead, manage, and train the information security team, including architects, GRC, and SOC roles.
• Identify, analyze, and continuously manage information security and cyber risks.
• Write information security and cybersecurity policy documents and procedures, and validate existing procedures as required.
• Build and implement work plans in the field of information security, including budget management.
• Maintain ongoing collaboration with suppliers, consultants, and clients (supply chain) while meeting regulatory requirements.
• Plan and execute periodic information security risk surveys, drills, and penetration testing (PT) in accordance with policy and regulations.
• Oversee the operation of the SIEM/SOC center (external service).
• Map company assets, classify them by sensitivity level, and define required controls.
• Provide ongoing reports on the state of information security, organizational exposure, and risks.
• Conduct information security awareness training and share updated information with all company employees.
• Provide guidance, consulting, and support to various internal stakeholders on information security in existing projects.
• Work closely and collaboratively with all business units across the organization.

What We’re Looking For

• Proven experience (5+ years) in information security and cybersecurity (experience as a CISO – a strong advantage).
• CISM or CISSP certification – required. (Additional professional certifications in information security and networking – an advantage.)
• Experience in direct/matrix management of an information security team – an advantage.
• Familiarity and compliance with information security standards; advantage for familiarity with PCI, etc
• Experience with cloud information security and working in cloud environments.
• Knowledge of various information security risks, solutions, cybersecurity architecture, and methodologies.
• Ability and experience in leading complex technological projects in infrastructure/information security.
• Ability and experience in managing infrastructure and cybersecurity incidents and failures, with strong teamwork and matrix management skills.
• High technical proficiency and familiarity with leading and advanced information security products.
• Composure and ability to handle incidents and situations arising in this domain.
• Strong teamwork and collaboration skills with multiple organizational interfaces.
• Experience working in financial organizations (under compliance and regulation) – an advantage.
• Relevant academic degree – an advantage.